View previous topic :: View next topic |
Author |
Message |
wallace1819 Apprentice
Joined: 17 Aug 2002 Posts: 195 Location: VT
|
Posted: Sat Aug 17, 2002 9:12 pm Post subject: suid question |
|
|
I've been working on cuting down some of my suid apps on my laptop, but I have a couple of questions here is what I have left....
-rwsr-xr-x 1 root wheel /var/cache/edb/dep/dep-portage-2.0.27.ebuild
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/diffutils-2.7.5-r1
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/fileutils-4.1.8
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/acl-1.1.3
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/acl-20020124-r1
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/attr-1.1.3-r1
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/attr-1.1.3
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/attr-20020124
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/grep-2.4.2-r5
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/grub-0.90-r7
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/netkit-base-0.17-r5
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/psmisc-19-r2
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/pam-login-3.6-r1
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/sharutils-4.2.1-r4
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/tar-1.13.25-r1
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/textutils-2.0.19
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/devfsd-1.3.24
-rw-rwSr-- 1 root root /var/cache/edb/dep/sys-apps/xfsprogs-1.3.13
-rw-rwSr-- 1 root root /var/cache/edb/dep/sys-apps/xfsprogs-20020124-r2
-rw-rwSr-- 1 root root /var/cache/edb/dep/sys-apps/pcmcia-cs-3.1.33-r5
-rw-rwSr-- 1 root root /var/cache/edb/dep/sys-apps/pcmcia-cs-3.1.34-r6
-rw-rwSr-- 1 root root /var/cache/edb/dep/sys-apps/pcmcia-cs-3.1.34-r7
-rw-rwSr-- 1 root root /var/cache/edb/dep/sys-apps/pcmcia-cs-3.2.0
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-devel/ld.so-1.9.11-r2
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-libs/cracklib-2.7-r2
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-libs/cracklib-2.7-r3
-rw-rwSr-- 1 root root /var/cache/edb/dep/sys-libs/gpm-1.19.6
-rw-rwSr-- 1 root root /var/cache/edb/dep/sys-libs/gpm-1.20.0-r1
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-kernel/xfs-sources-2.4.18
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/kde-base/kdenetwork-2.2.2-r1
Can the suid bit be removed from the stuff in /var/cache/edb/dep/* ????
-rwsr-xr-x 1 root root /usr/bin/gpasswd
-rwsr-xr-x 1 root root /usr/bin/passwd
-rws--x--x 1 root root /usr/lib/misc/ssh-keysign
-r-sr-xr-x 1 root root /usr/sbin/pwdb_chkpwd
-r-sr-xr-x 1 root root /usr/sbin/unix_chkpwd
-rws--x--x 1 root root /usr/X11R6/bin/xterm
-rws--x--x 1 root root /usr/X11R6/bin/XFree86
-rwsr-xr-x 1 root root /bin/su
Anyone know if xterm has to be suid???
Last but not least...Is there a Gentoo-Security email list where anouncements are made concerning vuln/patches/etc... for apps available via emerge???
thx,
wallace |
|
Back to top |
|
|
rac Bodhisattva
Joined: 30 May 2002 Posts: 6553 Location: Japanifornia
|
Posted: Sun Aug 18, 2002 1:11 am Post subject: Re: suid question |
|
|
wallace1819 wrote: | Anyone know if xterm has to be suid??? |
Yes - it needs write access to /var/run/utmp and /var/log/wtmp, even when run as a normal user.
Quote: | Last but not least...Is there a Gentoo-Security email list where anouncements are made concerning vuln/patches/etc... for apps available via emerge??? |
There's gentoo-announce, which usually contains these announcements, many of which are mirrored here in the News & Announcements forum. There is also a gentoo-security mailing list for discussions related to Gentoo security. _________________ For every higher wall, there is a taller ladder |
|
Back to top |
|
|
|
|
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
|